Abstract
The possibility of making the Internet accessible via mobile telephones has generated an important opportunity for electronic commerce. Nevertheless, some deficiencies deter its mass acceptance in e-commerce applications. In order to speed up the information delivery, the use of brokerage systems constitutes an interesting solution. In this paper we review the problem of certificate validation in m-commerce transactions and we present an architecture where a broker is used as OCSP responder for the certificate validation. A modification over OCSP called \(\mathcal{H}\)-OCSP is also proposed as a way to reduce the computational load and the bandwidth requirements of OCSP which is specially desirable in the wireless environment. The ASN.1 add-on for \(\mathcal{H}\)-OCSP that makes it inter-operable with the standard OCSP is defined and the behaviour of \(\mathcal{H}\)-OCSP compared to standard OCSP is evaluated.
Chapter PDF
References
Dierks, T., Allen, C.: The TLS protocol version 1.0, RFC 2246 (1999)
Even, S., Goldreich, O., Micali, S.: Online/offline signatures. Journal of Criptology 9, 35–67 (1996)
Fox, B., LaMacchia, B.: Online Certificate Status Checking in Financial Transactions: The Case for Re-issuance. In: Franklin, M.K. (ed.) FC 1999. LNCS, vol. 1648, pp. 104–117. Springer, Heidelberg (1999)
Housley, R., Ford, W., Polk, W., Solo, D.: Internet X.509 Public Key Infrastructure Certificate and CRL Profile, RFC 2459 (1999)
ITU/ISO Recommendation. X.509 Information Technology Open Systems Interconnection – The Directory: Autentication Frameworks, Technical Corrigendum (2000)
Malpani, A., Hoffman, P., Housley, P., Freeman, T.: Simple Certification Validation Protocol (SCVP), Internet Draft: draft-ietf-pkix-scvp-11.txt (December 2002)
Muñoz, J.L., Forné, J.: Evaluation of Certificate Revocation Policies: OCSP vs. Overissued CRL. In: DEXA Workshops 2002. Workshop on Trust and Privacy in Digital Business (TrustBus 2002), September 2002, pp. 511–515. IEEE Computer Society, Los Alamitos (2002)
Myers, M., Ankney, R., Malpani, A., Galperin, S., Adams, C.: X.509 Internet Public Key Infrastructure Online Certificate Status Protocol – OCSP, RFC 2560 (1999)
Myers, M.: DPV and DPD over OCSP, Internet Draft: draft-ietf-pkix-dpvdpd-00.txt (January 2003)
Nikander, P.: An Architecture for Authorization and Delegation in Distributed Object-Oriented Agent Systems. PhD thesis, Helsinki University of Technology
CCITT Recommendation X.500. The directory overview of concepts, models and services (1988)
ITU/ISO Recommendation X.509. Information technology Open Systems Interconnection – The Directory: Public Key and Attribute Certificate Frameworks (1997)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2003 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Muñoz, J.L., Forné, J., Esparza, O., Soriano, B.M. (2003). Using OCSP to Secure Certificate-Using Transactions in M-commerce. In: Zhou, J., Yung, M., Han, Y. (eds) Applied Cryptography and Network Security. ACNS 2003. Lecture Notes in Computer Science, vol 2846. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-45203-4_22
Download citation
DOI: https://doi.org/10.1007/978-3-540-45203-4_22
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-20208-0
Online ISBN: 978-3-540-45203-4
eBook Packages: Springer Book Archive